Hi I Have a Security Issue on my Web Application.My ASP.NET Web application was configured to return informative error messages. This could enable an attacker to understand the cause of the errors and use this information to develop further attack strategies.

What kind of informative message you are showing, if you are worried about the detailed error message why can't you change the error display. You can log the detailed error in a log file and display generic error in your front page.

Please provide more details about the requirement so that we suggest more appropriate solution.Regards,Asheej T K